[
https://issues.apache.org/jira/browse/RANGER-2185?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16577075#comment-16577075
]
dhomme edited comment on RANGER-2185 at 8/11/18 7:49 AM:
---------------------------------------------------------
[~rmani] I tested it with version release-ranger-1.0.0. I found that execute
'show databases;' would check whether if the user has policy with database=*,
if not, it will fail with access-denied.
was (Author: dhomme):
[~rmani] I tested it with version release-ranger-1.0.0. I found that execute
'show databases;' would check whether if the user has policy with database=/*,
if not, it will fail with access-denied.
> Hive Plugin show databases permission denied when user has access to some of
> the databases
> ------------------------------------------------------------------------------------------
>
> Key: RANGER-2185
> URL: https://issues.apache.org/jira/browse/RANGER-2185
> Project: Ranger
> Issue Type: Bug
> Components: plugins
> Affects Versions: 1.0.0
> Reporter: dhomme
> Priority: Major
> Labels: security
> Attachments:
> 0001-RANGER-2185-fix-showdatabases-permission-when-user-h.patch
>
>
> Add a resource based policy to allow a user, hive, has access to the default
> database. Then execute 'show databases;' via beeline, the user should see
> 'default'. Instead following error is shown:
> Error: Error while compiling statement: FAILED: HiveAccessControlException
> Permission denied: user [hive] does not have [USE] privilege on [*]
> (state=42000,code=40000)
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
